Collaborate Disseminate
A recent Akamai Security blog post, Massive Campaign Targeting UK Banks Bypassing 2FA, written by my colleague Or Katz, is a great insight into how attackers used very simple techniques to bypass two-factor (2FA) authentication security to obtain acces… Continue reading Is MFA a Security Illusion?
A recent Akamai Security blog post, Massive Campaign Targeting UK Banks Bypassing 2FA, written by my colleague Or Katz, is a great insight into how attackers used very simple techniques to bypass two-factor (2FA) authentication security to obtain access to U.K. consumers’ bank accounts. Continue reading Is MFA a Security Illusion?
It’s not news that some of the top government agencies and companies in the world were victims of the SolarWinds attack. At this point, I can say it’s the reason I didn’t have a smoother transition back into work-life following a long vacation. As I understand it, the breaches happened after malicious code was inserted into a software patch that was downloaded by the companies and agencies. The installation of the patch executed malicious code, called SUNBURST, which created an entry point for other malicious codes (TEARDROP/RAINDROP). These additional codes were used to allow attackers to move laterally within the network and exfiltrate sensitive customer information to a public command and control server. Continue reading SolarWinds Hack and the Case of DNS Security
It’s not news that some of the top government agencies and companies in the world were victims of the SolarWinds attack. At this point, I can say it’s the reason I didn’t have a smoother transition back into work-life following a long vacation. As I un… Continue reading SolarWinds Hack and the Case of DNS Security
Phishing continues to be a major attack vector, and it’s surprising just how many security incidents and breaches start with an employee clicking on a link in a carefully crafted phishing email (and sometimes doing the same with a not-so-well crafted phishing email — see this example). Continue reading Phishing: Holiday Season Attacks on the Rise
Emotet malware has been around since 2014, but 2020 saw a resurgence of attacks. In September 2020, Emotet affected 14% of organizations worldwide. So, what is Emotet? And why is it so dangerous? Continue reading Emotet: A Year in the Life of a Malware
While the world fights against the COVID-19 pandemic, cybercriminals are out in full force with a multitude of scams designed to take advantage of the confusion and panic. COVID-19 has — by necessity — made us all more comfortable working, playing, a… Continue reading Cyberattacks Evolve as the Hospitality and Travel Industry Adapts
While the world fights against the COVID-19 pandemic, cybercriminals are out in full force with a multitude of scams designed to take advantage of the confusion and panic. COVID-19 has — by necessity — made us all more comfortable working, playing, and buying online. Continue reading Cyberattacks Evolve as the Hospitality and Travel Industry Adapts
Whenever we talk about what’s next for Akamai’s security portfolio, we clearly want to look at the challenges that are top of mind for our customers — both today and tomorrow. And what a year 2020 has shaped up to be in terms of new challenges for CIS… Continue reading What’s Next in Security
Whenever we talk about what’s next for Akamai’s security portfolio, we clearly want to look at the challenges that are top of mind for our customers — both today and tomorrow. And what a year 2020 has shaped up to be in terms of new challenges for CISOs and their security teams. Continue reading What’s Next in Security